Category: Threat Intel

Apple AirPort routers get critical security update http://ift.tt/28KDuY3 Apple just rolled out a security fix for its AirPort range of wireless routers. The update is slightly mysterious: it fixes a vulnerability first reported nearly a year ago, dubbed CVE-2015-7029, about which we still know nothing from the CVE bug database except that “this candidate [bug]…

Reverse-engineering DUBNIUM’s Flash-targeting exploit http://ift.tt/28KQTzT The DUBNIUM campaign in December involved one exploit in-the-wild that affected Adobe Flash Player. In this blog, we’re going to examine the technical details of the exploit that targeted vulnerability CVE-2015-8651. For more details on this vulnerability, see Adobe Security Bulletin APSB16-01. Note that Microsoft Edge on Windows 10…

GoToMyPC suffers ‘very sophisticated’ password attack http://ift.tt/28JP3iP Having problems logging in to GoToMyPC? Here’s why: Citrix’s remote-access service for laptops and PCs has been hacked, and users are being required to change their passwords. From an incident report Citrix posted on Saturday and that it’s been updating since: Unfortunately, the GoToMYPC service has been targeted…

Banking Trojans as a Service—Theft Made Easy in Brazil http://ift.tt/28J4Mu3 Banking Trojans as a Service—Theft Made Easy in Brazil As a known banking Trojan center, it’s not surprising when Brazil’s cybercriminals launch what could be considered “banking Trojans as a service.” In this particular case, a skilled cybercriminal started…

IPv4 hijackers setting up shell companies to hoard and sell addresses http://ift.tt/28J8XqS We’ve long known it was coming, and it finally happened in September 2015: the pool of available IPv4 addresses for North America completely dried up. That doesn’t mean you can’t still get an IPv4 address space, which is the internet protocol that routes…

Resurrection of the Evil Miner http://ift.tt/28Is70e At FireEye Labs, we recently detected the resurgence of a coin mining campaign with a novel and unconventional infection vector in the form of an iFRAME (inline frame) – an HTML document embedded inside another HTML document on a web page that allows users to get content from another…

News Flash: the “Ohdear­notagain” vulnerability [Chet Chat Podcast 242] http://ift.tt/1YBnSJk Paul Ducklin is a passionate security proselytiser. (That’s like an evangelist, but more so!) He lives and breathes computer security, and would be happy for you to do so, too. Follow him on Twitter: @duckblog Threat Intel via Naked Security – Sophos http://ift.tt/1pHdTOi June 19,…

Flash zero-day fix is out, get it ASAP http://ift.tt/28KnT1S Two days ago we wrote about CVE-2016-4171, a security vulnerability that doesn’t have a fancy name, but if it did, it might be FourthTimeUnlucky. That’s the bug that necessitated the fourth Adobe zero-day Flash update in four months, following similar patches that shipped in March, April…

Islamic State hacker admits to hacking, sharing US military PII http://ift.tt/1V16jwm A hacker who passed a list of US military personnel to so-called Islamic State (IS), knowing they’d use it to target those people in terrorist attacks, pleaded guilty on Wednesday and is facing the potential of a lengthy jail term. Ardit Ferizi, a 20-year-old…

Cyber Arms Treaty Is A Must But It Will Take A Major Incident To Spur Action http://ift.tt/1Ug8VfH Nations won’t act on risk of cyber weapons until something goes wrong, warns Kaspersky’s David Emm The creation of a cyber arms agreement between nations that limits or bans the use of cyber weapons will occur only after…